%0 Journal Article
%T DDoS detection method based on network-wide PCA<br>基于全局网络PCA的DDoS攻击检测方法
%A LIU Yi
%A FU Feng
%A SUN Xin
%A <br>柳　祎
%A 付　枫
%A 孙　鑫
%J 计算机应用研究
%D 2012
%I 
%X With the extension of network scale, the centralized detection method against DDoS had failed to meet requirements such as real-time and accuracy. This paper presented a distributed method based on WPCAD to detect increasingly serious DDoS attacks. DDoS attack flows could cause correlation between the abnormal traffic generated by certain tools and originated from different nodes. By taking advantage of this feature, this method first got ODin matrixes from the original OD matrixes, then each processing unit extracted the correlation between potential anomalous traffic by principle component analysis (PCA). This method cunsumed less network bandwidth and met the requirement of real-time with the distributed structure. The experimental results show that this method has better detection effect.
%K DDoS attacks
%K network-wide PCA
%K OD matrix
%K distributed detection<br>分布式拒绝服务攻击
%K 全局网络主成分分析
%K OD矩阵
%K 分布式检测
%U http://www.alljournals.cn/get_abstract_url.aspx?pcid=5B3AB970F71A803DEACDC0559115BFCF0A068CD97DD29835&cid=8240383F08CE46C8B05036380D75B607&jid=A9D9BE08CDC44144BE8B5685705D3AED&aid=098B0100FA0779307D1D042A2C000209&yid=99E9153A83D4CB11&vid=771469D9D58C34FF&iid=B31275AF3241DB2D&sid=349C237498B84473&eid=FE1EFC69DB09E3CD&journal_id=1001-3695&journal_name=计算机应用研究&referenced_num=0&reference_num=7